HomePentest-Tools.com Logo

Flexera InstallShield Privilege Escalation Vulnerability CVE-2016-2542

Severity
CVSSv3 Score
7.8
Vulnerability description

Flexera InstallShield is prone to a privilege escalation vulnerability.

Risk description

The flaw is due to an untrusted search path vulnerability in Flexera InstallShield. Successful exploitation will allow a local attacker to gain privileges via a Trojan horse DLL in the current working directory of a setup-launcher executable file.

Recommendation

Apply the patch from the link mentioned in reference.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Feb 24, 2016
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available